Home

CVE-2021-3715

Description

A flaw was found in the Routing decision classifier in the Linux kernels Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition. This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.042

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.4Windows
(RHSA-2021:3438) kernel security and bug fix update bpftool-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-abi-whitelists-3.10.0-1160.42.2.el7.noarch.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-debug-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-debug-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-doc-3.10.0-1160.42.2.el7.noarch.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-headers-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-tools-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-tools-libs-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update perf-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3438) kernel security and bug fix update python-perf-3.10.0-1160.42.2.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_11_1-1-8.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_15_2-1-8.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_21_1-1-6.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_24_1-1-4.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_25_1-1-4.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_2_1-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_2_2-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_31_1-1-3.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_36_2-1-2.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_41_1-1-1.el7.x86_64.rpmLinux
(RHSA-2021:3441) kpatch-patch security update kpatch-patch-3_10_0-1160_6_1-1-9.el7.x86_64.rpmLinux
Bpftool update (ELSA-2021-3438) bpftool-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel update (ELSA-2021-3438) kernel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-abi-whitelists update (ELSA-2021-3438) kernel-abi-whitelists-3.10.0-1160.42.2.el7.noarch.rpmLinux
Kernel-debug update (ELSA-2021-3438) kernel-debug-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-debug-devel update (ELSA-2021-3438) kernel-debug-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-devel update (ELSA-2021-3438) kernel-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-doc update (ELSA-2021-3438) kernel-doc-3.10.0-1160.42.2.el7.noarch.rpmLinux
Kernel-headers update (ELSA-2021-3438) kernel-headers-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-tools update (ELSA-2021-3438) kernel-tools-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-tools-libs update (ELSA-2021-3438) kernel-tools-libs-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-tools-libs-devel update (ELSA-2021-3438) kernel-tools-libs-devel-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Perf update (ELSA-2021-3438) perf-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Python-perf update (ELSA-2021-3438) python-perf-3.10.0-1160.42.2.el7.x86_64.rpmLinux
Kernel-uek update (ELSA-2021-9459) kernel-uek-4.1.12-124.54.6.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9459) kernel-uek-debug-4.1.12-124.54.6.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9459) kernel-uek-debug-devel-4.1.12-124.54.6.1.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9459) kernel-uek-devel-4.1.12-124.54.6.1.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9459) kernel-uek-doc-4.1.12-124.54.6.1.el7uek.noarch.rpmLinux
Kernel-uek-firmware update (ELSA-2021-9459) kernel-uek-firmware-4.1.12-124.54.6.1.el7uek.noarch.rpmLinux
Kernel-uek update (ELSA-2021-9473) kernel-uek-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug update (ELSA-2021-9473) kernel-uek-debug-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-debug-devel update (ELSA-2021-9473) kernel-uek-debug-devel-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-devel update (ELSA-2021-9473) kernel-uek-devel-4.1.12-124.56.1.el7uek.x86_64.rpmLinux
Kernel-uek-doc update (ELSA-2021-9473) kernel-uek-doc-4.1.12-124.56.1.el7uek.noarch.rpmLinux
Kernel-uek-firmware update (ELSA-2021-9473) kernel-uek-firmware-4.1.12-124.56.1.el7uek.noarch.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.98.1.x86_64.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.98.1.noarch.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.98.1.noarch.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.98.1.noarch.rpmLinux
SUSE-SU-2021:3748-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.98.1.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160-debuginfo-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_11_1-debuginfo-1-8.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_15_2-debuginfo-1-8.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_21_1-debuginfo-1-6.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_24_1-debuginfo-1-4.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_25_1-debuginfo-1-4.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_2_1-debuginfo-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_2_2-debuginfo-1-9.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_31_1-debuginfo-1-3.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_36_2-debuginfo-1-2.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_41_1-debuginfo-1-1.el7.x86_64.rpmLinux
(RHSA-2021:3441)Moderate: security update kpatch-patch-3_10_0-1160_6_1-debuginfo-1-9.el7.x86_64.rpmLinux
Use After Free Vulnerability (CVE-2021-3715)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234